Mozilla yesterday patched 10 bugs in Firefox, half of them critical, in the
browser’s rendering and JavaScript engines, media and video libraries, and other
components.

Firefox 3.5.6, the browser’s first security update since late October, fixed
five flaws rated critical by Mozilla, one tagged as high, three pegged as
moderate, and one labeled as a low threat. The five critical vulnerabilities
were located in the rendering and JavaScript engines, and in the "liboggplay"
and "libtheora" media and video libraries.

"Some of these crashes showed evidence of memory corruption under certain
circumstances and we presume that with enough effort at least some of these
could be exploited to run arbitrary code," Mozilla said in the advisory that
spelled out the rendering and JavaScript engine flaws.

Оставить мнение

Check Also

Порка распорки. Разбираем свежую уязвимость в фреймворке Apache Struts 2

Сегодня мы вернемся к Apache Struts, популярному веб-фреймворку, который за последнее врем…